mirror of
https://github.com/CVEProject/cvelist.git
synced 2025-07-29 05:56:59 +00:00
"-Synchronized-Data."
This commit is contained in:
CVE Team
parent
2a7e35ed53
commit
376bd4c9a4
@ -2,30 +2,209 @@
|
||||
"data_type": "CVE",
|
||||
"data_format": "MITRE",
|
||||
"data_version": "4.0",
|
||||
"generator": {
|
||||
"engine": "Vulnogram 0.0.9"
|
||||
},
|
||||
"CVE_data_meta": {
|
||||
"ID": "CVE-2020-11853",
|
||||
"ASSIGNER": "security@suse.com",
|
||||
"TITLE": "Arbitrary code execution vulnerability on multiple Micro Focus products ",
|
||||
"STATE": "PUBLIC"
|
||||
},
|
||||
"source": {
|
||||
"discovery": "EXTERNAL"
|
||||
},
|
||||
"affects": {
|
||||
"vendor": {
|
||||
"vendor_data": [
|
||||
{
|
||||
"vendor_name": "n/a",
|
||||
"product": {
|
||||
"product_data": [
|
||||
{
|
||||
"product_name": "Operation Bridge Manager",
|
||||
"product_name": "Operation Bridge Manager ",
|
||||
"version": {
|
||||
"version_data": [
|
||||
{
|
||||
"version_value": "2020.05, 2019.11, 2019.05, 2018.11, 2018.05, versions 10.6x and 10.1x and older versions."
|
||||
"version_affected": "=",
|
||||
"version_value": "2020.5"
|
||||
},
|
||||
{
|
||||
"version_affected": "=",
|
||||
"version_value": "2019.11"
|
||||
},
|
||||
{
|
||||
"version_affected": "=",
|
||||
"version_value": "2019.05"
|
||||
},
|
||||
{
|
||||
"version_affected": "=",
|
||||
"version_value": "2018.11"
|
||||
},
|
||||
{
|
||||
"version_affected": "=",
|
||||
"version_value": "2018.05"
|
||||
},
|
||||
{
|
||||
"version_affected": "<=",
|
||||
"version_value": "10.63"
|
||||
}
|
||||
]
|
||||
}
|
||||
},
|
||||
{
|
||||
"product_name": "Application Performance Management ",
|
||||
"version": {
|
||||
"version_data": [
|
||||
{
|
||||
"version_affected": "=",
|
||||
"version_value": "9.51"
|
||||
},
|
||||
{
|
||||
"version_affected": "=",
|
||||
"version_value": "9.50"
|
||||
},
|
||||
{
|
||||
"version_affected": "=",
|
||||
"version_value": "9.40"
|
||||
}
|
||||
]
|
||||
}
|
||||
},
|
||||
{
|
||||
"product_name": "Data Center Automation",
|
||||
"version": {
|
||||
"version_data": [
|
||||
{
|
||||
"version_affected": "=",
|
||||
"version_value": "2019.11"
|
||||
}
|
||||
]
|
||||
}
|
||||
},
|
||||
{
|
||||
"product_name": "Operations Bridge (containerized)",
|
||||
"version": {
|
||||
"version_data": [
|
||||
{
|
||||
"version_affected": "=",
|
||||
"version_value": "2019.11"
|
||||
},
|
||||
{
|
||||
"version_affected": "=",
|
||||
"version_value": "2019.08"
|
||||
},
|
||||
{
|
||||
"version_affected": "=",
|
||||
"version_value": "2019.05"
|
||||
},
|
||||
{
|
||||
"version_affected": "=",
|
||||
"version_value": "2018.11"
|
||||
},
|
||||
{
|
||||
"version_affected": "=",
|
||||
"version_value": "2018.08"
|
||||
},
|
||||
{
|
||||
"version_affected": "=",
|
||||
"version_value": "2018.05"
|
||||
},
|
||||
{
|
||||
"version_affected": "=",
|
||||
"version_value": "2018.02"
|
||||
},
|
||||
{
|
||||
"version_affected": "=",
|
||||
"version_value": "2017.11"
|
||||
}
|
||||
]
|
||||
}
|
||||
},
|
||||
{
|
||||
"product_name": "Universal CMDB ",
|
||||
"version": {
|
||||
"version_data": [
|
||||
{
|
||||
"version_affected": "=",
|
||||
"version_value": "2020.05"
|
||||
},
|
||||
{
|
||||
"version_affected": "=",
|
||||
"version_value": "2019.11"
|
||||
},
|
||||
{
|
||||
"version_affected": "=",
|
||||
"version_value": "2019.05"
|
||||
},
|
||||
{
|
||||
"version_affected": "=",
|
||||
"version_value": "2019.02"
|
||||
},
|
||||
{
|
||||
"version_affected": "=",
|
||||
"version_value": "2018.11"
|
||||
},
|
||||
{
|
||||
"version_affected": "=",
|
||||
"version_value": "2018.08"
|
||||
},
|
||||
{
|
||||
"version_affected": "=",
|
||||
"version_value": "2018.05"
|
||||
},
|
||||
{
|
||||
"version_affected": "=",
|
||||
"version_value": "11.0"
|
||||
},
|
||||
{
|
||||
"version_affected": "=",
|
||||
"version_value": "10.33"
|
||||
},
|
||||
{
|
||||
"version_affected": "=",
|
||||
"version_value": "10.32"
|
||||
},
|
||||
{
|
||||
"version_affected": "=",
|
||||
"version_value": "10.31"
|
||||
},
|
||||
{
|
||||
"version_affected": "=",
|
||||
"version_value": "10.30"
|
||||
}
|
||||
]
|
||||
}
|
||||
},
|
||||
{
|
||||
"product_name": "Hybrid Cloud Management",
|
||||
"version": {
|
||||
"version_data": [
|
||||
{
|
||||
"version_name": "2018.05",
|
||||
"version_affected": "<=",
|
||||
"version_value": "2020.05"
|
||||
}
|
||||
]
|
||||
}
|
||||
},
|
||||
{
|
||||
"product_name": "Service Management Automation ",
|
||||
"version": {
|
||||
"version_data": [
|
||||
{
|
||||
"version_affected": "=",
|
||||
"version_value": "2020.05"
|
||||
},
|
||||
{
|
||||
"version_affected": "=",
|
||||
"version_value": "2020.02"
|
||||
}
|
||||
]
|
||||
}
|
||||
}
|
||||
]
|
||||
}
|
||||
},
|
||||
"vendor_name": "Micro Focus "
|
||||
}
|
||||
]
|
||||
}
|
||||
@ -42,221 +221,85 @@
|
||||
}
|
||||
]
|
||||
},
|
||||
"references": {
|
||||
"reference_data": [
|
||||
{
|
||||
"refsource": "MISC",
|
||||
"name": "https://softwaresupport.softwaregrp.com/doc/KM03747658",
|
||||
"url": "https://softwaresupport.softwaregrp.com/doc/KM03747658"
|
||||
},
|
||||
{
|
||||
"refsource": "MISC",
|
||||
"name": "https://www.zerodayinitiative.com/advisories/ZDI-20-1301/",
|
||||
"url": "https://www.zerodayinitiative.com/advisories/ZDI-20-1301/"
|
||||
},
|
||||
{
|
||||
"refsource": "MISC",
|
||||
"name": "https://www.zerodayinitiative.com/advisories/ZDI-20-1303/",
|
||||
"url": "https://www.zerodayinitiative.com/advisories/ZDI-20-1303/"
|
||||
},
|
||||
{
|
||||
"refsource": "MISC",
|
||||
"name": "https://www.zerodayinitiative.com/advisories/ZDI-20-1305/",
|
||||
"url": "https://www.zerodayinitiative.com/advisories/ZDI-20-1305/"
|
||||
},
|
||||
{
|
||||
"refsource": "MISC",
|
||||
"name": "https://www.zerodayinitiative.com/advisories/ZDI-20-1293/",
|
||||
"url": "https://www.zerodayinitiative.com/advisories/ZDI-20-1293/"
|
||||
},
|
||||
{
|
||||
"refsource": "MISC",
|
||||
"name": "https://www.zerodayinitiative.com/advisories/ZDI-20-1328/",
|
||||
"url": "https://www.zerodayinitiative.com/advisories/ZDI-20-1328/"
|
||||
},
|
||||
{
|
||||
"refsource": "MISC",
|
||||
"name": "https://www.zerodayinitiative.com/advisories/ZDI-20-1318/",
|
||||
"url": "https://www.zerodayinitiative.com/advisories/ZDI-20-1318/"
|
||||
},
|
||||
{
|
||||
"refsource": "MISC",
|
||||
"name": "https://www.zerodayinitiative.com/advisories/ZDI-20-1316/",
|
||||
"url": "https://www.zerodayinitiative.com/advisories/ZDI-20-1316/"
|
||||
},
|
||||
{
|
||||
"refsource": "MISC",
|
||||
"name": "https://www.zerodayinitiative.com/advisories/ZDI-20-1306/",
|
||||
"url": "https://www.zerodayinitiative.com/advisories/ZDI-20-1306/"
|
||||
},
|
||||
{
|
||||
"refsource": "MISC",
|
||||
"name": "https://www.zerodayinitiative.com/advisories/ZDI-20-1300/",
|
||||
"url": "https://www.zerodayinitiative.com/advisories/ZDI-20-1300/"
|
||||
},
|
||||
{
|
||||
"refsource": "MISC",
|
||||
"name": "https://www.zerodayinitiative.com/advisories/ZDI-20-1312/",
|
||||
"url": "https://www.zerodayinitiative.com/advisories/ZDI-20-1312/"
|
||||
},
|
||||
{
|
||||
"refsource": "MISC",
|
||||
"name": "https://www.zerodayinitiative.com/advisories/ZDI-20-1298/",
|
||||
"url": "https://www.zerodayinitiative.com/advisories/ZDI-20-1298/"
|
||||
},
|
||||
{
|
||||
"refsource": "MISC",
|
||||
"name": "https://www.zerodayinitiative.com/advisories/ZDI-20-1289/",
|
||||
"url": "https://www.zerodayinitiative.com/advisories/ZDI-20-1289/"
|
||||
},
|
||||
{
|
||||
"refsource": "MISC",
|
||||
"name": "https://www.zerodayinitiative.com/advisories/ZDI-20-1323/",
|
||||
"url": "https://www.zerodayinitiative.com/advisories/ZDI-20-1323/"
|
||||
},
|
||||
{
|
||||
"refsource": "MISC",
|
||||
"name": "https://www.zerodayinitiative.com/advisories/ZDI-20-1324/",
|
||||
"url": "https://www.zerodayinitiative.com/advisories/ZDI-20-1324/"
|
||||
},
|
||||
{
|
||||
"refsource": "MISC",
|
||||
"name": "https://www.zerodayinitiative.com/advisories/ZDI-20-1321/",
|
||||
"url": "https://www.zerodayinitiative.com/advisories/ZDI-20-1321/"
|
||||
},
|
||||
{
|
||||
"refsource": "MISC",
|
||||
"name": "https://www.zerodayinitiative.com/advisories/ZDI-20-1299/",
|
||||
"url": "https://www.zerodayinitiative.com/advisories/ZDI-20-1299/"
|
||||
},
|
||||
{
|
||||
"refsource": "MISC",
|
||||
"name": "https://www.zerodayinitiative.com/advisories/ZDI-20-1313/",
|
||||
"url": "https://www.zerodayinitiative.com/advisories/ZDI-20-1313/"
|
||||
},
|
||||
{
|
||||
"refsource": "MISC",
|
||||
"name": "https://www.zerodayinitiative.com/advisories/ZDI-20-1292/",
|
||||
"url": "https://www.zerodayinitiative.com/advisories/ZDI-20-1292/"
|
||||
},
|
||||
{
|
||||
"refsource": "MISC",
|
||||
"name": "https://www.zerodayinitiative.com/advisories/ZDI-20-1315/",
|
||||
"url": "https://www.zerodayinitiative.com/advisories/ZDI-20-1315/"
|
||||
},
|
||||
{
|
||||
"refsource": "MISC",
|
||||
"name": "https://www.zerodayinitiative.com/advisories/ZDI-20-1296/",
|
||||
"url": "https://www.zerodayinitiative.com/advisories/ZDI-20-1296/"
|
||||
},
|
||||
{
|
||||
"refsource": "MISC",
|
||||
"name": "https://www.zerodayinitiative.com/advisories/ZDI-20-1320/",
|
||||
"url": "https://www.zerodayinitiative.com/advisories/ZDI-20-1320/"
|
||||
},
|
||||
{
|
||||
"refsource": "MISC",
|
||||
"name": "https://www.zerodayinitiative.com/advisories/ZDI-20-1309/",
|
||||
"url": "https://www.zerodayinitiative.com/advisories/ZDI-20-1309/"
|
||||
},
|
||||
{
|
||||
"refsource": "MISC",
|
||||
"name": "https://www.zerodayinitiative.com/advisories/ZDI-20-1295/",
|
||||
"url": "https://www.zerodayinitiative.com/advisories/ZDI-20-1295/"
|
||||
},
|
||||
{
|
||||
"refsource": "MISC",
|
||||
"name": "https://www.zerodayinitiative.com/advisories/ZDI-20-1288/",
|
||||
"url": "https://www.zerodayinitiative.com/advisories/ZDI-20-1288/"
|
||||
},
|
||||
{
|
||||
"refsource": "MISC",
|
||||
"name": "https://www.zerodayinitiative.com/advisories/ZDI-20-1290/",
|
||||
"url": "https://www.zerodayinitiative.com/advisories/ZDI-20-1290/"
|
||||
},
|
||||
{
|
||||
"refsource": "MISC",
|
||||
"name": "https://www.zerodayinitiative.com/advisories/ZDI-20-1308/",
|
||||
"url": "https://www.zerodayinitiative.com/advisories/ZDI-20-1308/"
|
||||
},
|
||||
{
|
||||
"refsource": "MISC",
|
||||
"name": "https://www.zerodayinitiative.com/advisories/ZDI-20-1311/",
|
||||
"url": "https://www.zerodayinitiative.com/advisories/ZDI-20-1311/"
|
||||
},
|
||||
{
|
||||
"refsource": "MISC",
|
||||
"name": "https://www.zerodayinitiative.com/advisories/ZDI-20-1297/",
|
||||
"url": "https://www.zerodayinitiative.com/advisories/ZDI-20-1297/"
|
||||
},
|
||||
{
|
||||
"refsource": "MISC",
|
||||
"name": "https://www.zerodayinitiative.com/advisories/ZDI-20-1319/",
|
||||
"url": "https://www.zerodayinitiative.com/advisories/ZDI-20-1319/"
|
||||
},
|
||||
{
|
||||
"refsource": "MISC",
|
||||
"name": "https://www.zerodayinitiative.com/advisories/ZDI-20-1304/",
|
||||
"url": "https://www.zerodayinitiative.com/advisories/ZDI-20-1304/"
|
||||
},
|
||||
{
|
||||
"refsource": "MISC",
|
||||
"name": "https://www.zerodayinitiative.com/advisories/ZDI-20-1325/",
|
||||
"url": "https://www.zerodayinitiative.com/advisories/ZDI-20-1325/"
|
||||
},
|
||||
{
|
||||
"refsource": "MISC",
|
||||
"name": "https://www.zerodayinitiative.com/advisories/ZDI-20-1310/",
|
||||
"url": "https://www.zerodayinitiative.com/advisories/ZDI-20-1310/"
|
||||
},
|
||||
{
|
||||
"refsource": "MISC",
|
||||
"name": "https://www.zerodayinitiative.com/advisories/ZDI-20-1302/",
|
||||
"url": "https://www.zerodayinitiative.com/advisories/ZDI-20-1302/"
|
||||
},
|
||||
{
|
||||
"refsource": "MISC",
|
||||
"name": "https://www.zerodayinitiative.com/advisories/ZDI-20-1327/",
|
||||
"url": "https://www.zerodayinitiative.com/advisories/ZDI-20-1327/"
|
||||
},
|
||||
{
|
||||
"refsource": "MISC",
|
||||
"name": "https://www.zerodayinitiative.com/advisories/ZDI-20-1322/",
|
||||
"url": "https://www.zerodayinitiative.com/advisories/ZDI-20-1322/"
|
||||
},
|
||||
{
|
||||
"refsource": "MISC",
|
||||
"name": "https://www.zerodayinitiative.com/advisories/ZDI-20-1314/",
|
||||
"url": "https://www.zerodayinitiative.com/advisories/ZDI-20-1314/"
|
||||
},
|
||||
{
|
||||
"refsource": "MISC",
|
||||
"name": "https://www.zerodayinitiative.com/advisories/ZDI-20-1317/",
|
||||
"url": "https://www.zerodayinitiative.com/advisories/ZDI-20-1317/"
|
||||
},
|
||||
{
|
||||
"refsource": "MISC",
|
||||
"name": "https://www.zerodayinitiative.com/advisories/ZDI-20-1307/",
|
||||
"url": "https://www.zerodayinitiative.com/advisories/ZDI-20-1307/"
|
||||
},
|
||||
{
|
||||
"refsource": "MISC",
|
||||
"name": "https://www.zerodayinitiative.com/advisories/ZDI-20-1291/",
|
||||
"url": "https://www.zerodayinitiative.com/advisories/ZDI-20-1291/"
|
||||
},
|
||||
{
|
||||
"refsource": "MISC",
|
||||
"name": "https://www.zerodayinitiative.com/advisories/ZDI-20-1294/",
|
||||
"url": "https://www.zerodayinitiative.com/advisories/ZDI-20-1294/"
|
||||
}
|
||||
]
|
||||
},
|
||||
"description": {
|
||||
"description_data": [
|
||||
{
|
||||
"lang": "eng",
|
||||
"value": "An arbitrary code execution vulnerability exists in Micro Focus Operation Bridge Manager 2020.05, 2019.11, 2019.05, 2018.11, 2018.05, versions 10.6x and 10.1x and older versions. The vulnerability could allow remote attackers to execute arbitrary code."
|
||||
"value": "Arbitrary code execution vulnerability affecting multiple Micro Focus products. 1.) Operation Bridge Manager affecting version: 2020.05, 2019.11, 2019.05, 2018.11, 2018.05, versions 10.6x and 10.1x and older versions. 2.) Application Performance Management affecting versions : 9.51, 9.50 and 9.40 with uCMDB 10.33 CUP 3 3.) Data Center Automation affected version 2019.11 4.) Operations Bridge (containerized) affecting versions: 2019.11, 2019.08, 2019.05, 2018.11, 2018.08, 2018.05, 2018.02, 2017.11 5.) Universal CMDB affecting version: 2020.05, 2019.11, 2019.05, 2019.02, 2018.11, 2018.08, 2018.05, 11, 10.33, 10.32, 10.31, 10.30 6.) Hybrid Cloud Management affecting version 2020.05 7.) Service Management Automation affecting version 2020.5 and 2020.02. The vulnerability could allow remote attackers to execute arbitrary code."
|
||||
}
|
||||
]
|
||||
}
|
||||
},
|
||||
"references": {
|
||||
"reference_data": [
|
||||
{
|
||||
"refsource": "MISC",
|
||||
"url": "https://softwaresupport.softwaregrp.com/doc/KM03747658",
|
||||
"name": "https://softwaresupport.softwaregrp.com/doc/KM03747658"
|
||||
},
|
||||
{
|
||||
"refsource": "MISC",
|
||||
"url": "https://softwaresupport.softwaregrp.com/doc/KM03747657",
|
||||
"name": "https://softwaresupport.softwaregrp.com/doc/KM03747657"
|
||||
},
|
||||
{
|
||||
"refsource": "MISC",
|
||||
"url": "https://softwaresupport.softwaregrp.com/doc/KM03747854",
|
||||
"name": "https://softwaresupport.softwaregrp.com/doc/KM03747854"
|
||||
},
|
||||
{
|
||||
"refsource": "MISC",
|
||||
"url": "https://softwaresupport.softwaregrp.com/doc/KM03749879",
|
||||
"name": "https://softwaresupport.softwaregrp.com/doc/KM03749879"
|
||||
},
|
||||
{
|
||||
"refsource": "MISC",
|
||||
"url": "https://softwaresupport.softwaregrp.com/doc/KM03747949",
|
||||
"name": "https://softwaresupport.softwaregrp.com/doc/KM03747949"
|
||||
},
|
||||
{
|
||||
"refsource": "MISC",
|
||||
"url": "https://softwaresupport.softwaregrp.com/doc/KM03747948",
|
||||
"name": "https://softwaresupport.softwaregrp.com/doc/KM03747948"
|
||||
},
|
||||
{
|
||||
"refsource": "MISC",
|
||||
"url": "https://softwaresupport.softwaregrp.com/doc/KM03747950",
|
||||
"name": "https://softwaresupport.softwaregrp.com/doc/KM03747950"
|
||||
}
|
||||
]
|
||||
},
|
||||
"impact": {
|
||||
"cvss": {
|
||||
"version": "3.1",
|
||||
"attackVector": "NETWORK",
|
||||
"attackComplexity": "LOW",
|
||||
"privilegesRequired": "LOW",
|
||||
"userInteraction": "NONE",
|
||||
"scope": "UNCHANGED",
|
||||
"confidentialityImpact": "HIGH",
|
||||
"integrityImpact": "HIGH",
|
||||
"availabilityImpact": "HIGH",
|
||||
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H",
|
||||
"baseScore": 8.8,
|
||||
"baseSeverity": "HIGH"
|
||||
}
|
||||
},
|
||||
"exploit": [
|
||||
{
|
||||
"lang": "eng",
|
||||
"value": "Arbitrary code execution."
|
||||
}
|
||||
],
|
||||
"solution": [
|
||||
{
|
||||
"lang": "eng",
|
||||
"value": "For Operation Bridge Manager https://softwaresupport.softwaregrp.com/doc/KM03747658\nFor Application Performance Management https://softwaresupport.softwaregrp.com/doc/KM03747657\nFor Data Center Automation https://softwaresupport.softwaregrp.com/doc/KM03749879\nFor Operation Bridge (containerized) https://softwaresupport.softwaregrp.com/doc/KM03747854\nFor Hybrid Cloud Management https://softwaresupport.softwaregrp.com/doc/KM03747949\nFor Universal CMDB https://softwaresupport.softwaregrp.com/doc/KM03747948\nFor Service Management Automation https://softwaresupport.softwaregrp.com/doc/KM03747950"
|
||||
}
|
||||
],
|
||||
"credit": [
|
||||
{
|
||||
"lang": "eng",
|
||||
"value": "Micro Focus would like to thank Pedro Ribeiro from Agile Information Security working with Trend Micro Zero Day Initiative for discovering and reporting the vulnerability. "
|
||||
}
|
||||
]
|
||||
}
|
||||
18
2020/27xxx/CVE-2020-27982.json
Normal file
18
2020/27xxx/CVE-2020-27982.json
Normal file
@ -0,0 +1,18 @@
|
||||
{
|
||||
"data_type": "CVE",
|
||||
"data_format": "MITRE",
|
||||
"data_version": "4.0",
|
||||
"CVE_data_meta": {
|
||||
"ID": "CVE-2020-27982",
|
||||
"ASSIGNER": "cve@mitre.org",
|
||||
"STATE": "RESERVED"
|
||||
},
|
||||
"description": {
|
||||
"description_data": [
|
||||
{
|
||||
"lang": "eng",
|
||||
"value": "** RESERVED ** This candidate has been reserved by an organization or individual that will use it when announcing a new security problem. When the candidate has been publicized, the details for this candidate will be provided."
|
||||
}
|
||||
]
|
||||
}
|
||||
}
|
||||
Loading…
x
Reference in New Issue
Block a user